| ▲ | vel0city 14 hours ago | |
> Anyone handling PII needs to be trained in HIPAA compliance Anyone working at a covered entity needs HIPAA training. A random secretary working for some other random company unrelated to healthcare and isn't potentially a covered entity doesn't need it. I originally took your comment as secretaries in general, but re-reading makes it more clear to me you're specifically talking about secretaries in a healthcare setting. In which case yes, they would be bound to the same HIPAA rules I agree. | ||
| ▲ | munk-a 13 hours ago | parent [-] | |
Sorry about that confusion! Yeah, I was going off the example in the linked article which is specifically for note-taking during a physio appointment. | ||